Identity as a Service (IDaaS) is a type of Software as a Service (SaaS) offering that is normally configured to provide SSO, federated IdM, and password management services.
There are two basic approaches to architecting identity services: in-house or outsourced. The first approach, in-house, is simple because all the systems and data are located within the enterprise. In an outsourced model, on the other hand, most or all of the systems or data will be hosted by an external party.
An on-premise (or on-premises) IdM system is one in which all needed resources remain under your physical control. This usually means that you purchase or lease the necessary hardware, software, and licenses and then use your own team to build, integrate, and maintain the system.
First and foremost, some regulated industries may not be able to leverage IDaaS and remain compliant.
Another concern is that some of the most critical data in the enterprise is increasingly exposed once it moves out of the enterprise enclaves.
Finally, there is the issue of integration.
剩余内容请看本人公众号debugeeker, 链接为CISSP考试指南笔记:5.4 集成身份即服务